clamav is vulnerable to denial of service (DoS). A missing buffer size check results in a heap buffer overflow write, an attacker could submit a crafted HFS+ partition file allowing them to execute arbitrary code resulting in a system crash.
blog.clamav.net/2023/02/clamav-01038-01052-and-101-patch.html
community.rsa.com/t5/securid-product-advisories/rsa-customer-advisory-clamav-vulnerability-cve-2023-20032/ta-p/696366
sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clamav-q8DThCy
secdb.alpinelinux.org/edge/community.yaml
secdb.alpinelinux.org/v3.17/community.yaml
security-tracker.debian.org/tracker/CVE-2023-20032
security.gentoo.org/glsa/202310-01